CN102724207B - Method and device for transmitting/processing service request, client end and service end - Google Patents

Method and device for transmitting/processing service request, client end and service end Download PDF

Info

Publication number
CN102724207B
CN102724207B CN201210220489.4A CN201210220489A CN102724207B CN 102724207 B CN102724207 B CN 102724207B CN 201210220489 A CN201210220489 A CN 201210220489A CN 102724207 B CN102724207 B CN 102724207B
Authority
CN
China
Prior art keywords
information
service request
time
service
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201210220489.4A
Other languages
Chinese (zh)
Other versions
CN102724207A (en
Inventor
虞钢
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai easy Link Network Technology Co., Ltd.
Original Assignee
SHANGHAI XIBEN NETWORK TECHNOLOGY Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by SHANGHAI XIBEN NETWORK TECHNOLOGY Co Ltd filed Critical SHANGHAI XIBEN NETWORK TECHNOLOGY Co Ltd
Priority to CN201210220489.4A priority Critical patent/CN102724207B/en
Publication of CN102724207A publication Critical patent/CN102724207A/en
Application granted granted Critical
Publication of CN102724207B publication Critical patent/CN102724207B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Computer And Data Communications (AREA)
  • Storage Device Security (AREA)

Abstract

The invention relates to a method and device for transmitting/processing a service request, a client end and a service end. The method comprises the following steps of: determining time information on when the client end transmits the service request, wherein the time information at least comprises current time; respectively generating a time sequence and a random value based on the time information, wherein the random value is associated with the time information; adding the random value in an original key so as to form a new key; respectively encrypting the service request and the time information by using the new key so as to generate an encrypted service request and encrypted time information; and transmitting the encrypted service request, the encrypted time information and the time sequence to the service end. According to the technical scheme adopted by the invention, when the client end and the service end carry out encryption and decryption on the service request by adopting a symmetric encryption algorithm, the problem of replaying of request messages is avoided, so that the security of information transfer between the service end and the client end is improved.

Description

Transmission/the processing method of service request and device, client and service end
Technical field
The present invention relates to field of information security technology, particularly relate to the transmission/processing method of service request, the transmission/processing unit of service request, client and service end.
Background technology
At present, the application integration service between Large enterprise network is day by day complicated, and the system integration of traditional point-to-point type seems awkward.In order to address this problem, there has been proposed ESB (enterprise service bus, be called for short ESB) concept, namely the subsystems forming enterprise network accesses a public information platform in the mode being similar to connector, relatively independent each other, unified data dispatch is carried out, with high effective integration data and operation flow by scheduling engine.The definition of giving with Gartner company of consulting firm is studied according to famous IT, ESB is a kind of architecture, the Web service of enterprise, message-oriented middleware, Intelligent routing and switch technology is utilized to realize, be the product of traditional intermediate technology and the combine with technique such as XML, Web service, ESB provides connection maincenter the most basic in network.The target of Enterprise Service Bus Technology realizes Enterprise information integration in a standardized way, complete interconnected, intercommunication and the interoperability of business-to-business application system, standardization effort wherein comprises connector standards, management standardization, service message standardization and message standardization etc.
In actual applications, time between ESB and client to carry out message with the form of request message and response message, in order to ensure message safety, need to be encrypted message, conventional cryptographic algorithm comprises symmetric encipherment algorithm and rivest, shamir, adelman.Wherein, the key owing to using in symmetric encipherment algorithm only has one, and sending and receiving end both sides use these double secret key data to encrypt and decrypt, therefore, the encryption and decryption efficiency of symmetric encipherment algorithm is higher, but once this key is stolen or leaks, fail safe will be made to reduce.And rivest, shamir, adelman is due to needs two keys: public-key cryptography and private cipher key.Wherein, public-key cryptography and private cipher key are a pair, if be encrypted data with public-key cryptography, only had and could decipher with corresponding private cipher key; If be encrypted data with private cipher key, so only had and could decipher with corresponding public-key cryptography.Therefore, compared to symmetric encipherment algorithm, the fail safe of rivest, shamir, adelman is higher, but encryption and decryption efficiency is lower.
No matter be adopt symmetric encipherment algorithm or rivest, shamir, adelman, all may occur when client sends request message to ESB the problem that service request is recurred, and ESB needs differentiated and abandoned the service request of recurrence.Wherein, the recurrence of described service request refers to that client in fact only have sent a request message, and this request message is through serializing process and encryption, but in transmitting procedure, request message after this encryption sends service request to ESB after being intercepted and captured by the third-party application beyond this client again, thus causes the request message after encryption to retransmit problem.
In prior art, when message adopts rivest, shamir, adelman encryption, random key is usually utilized to recur problem to avoid service request.Particularly, random key is generated in client, rivest, shamir, adelman is adopted to be encrypted the random key after generating encryption to this random key, and utilize this random key to generate serialization information after encryption to being encrypted through the request message of serializing process, then the serialization information after the random key after encryption and encryption is sent to ESB.Owing to being encrypted request message by random key in client, and each random key generated is not identical, if therefore ESB second time receives the request message after identical encryption, namely think that this request message is recurred, thus abandon the request message of recurrence.
But, in actual applications, the service that ISP provides to ESB normally adopts different programming languages to realize from the service that service requester is suitable for processing, process this serve across language time, rivest, shamir, adelman there will be uncurrent problem.Although adopt symmetric encipherment algorithm there will not be serve uncurrent problem across language, in prior art, problem is recurred for service request when adopting symmetric encipherment algorithm, also there is no good solution.
More technical schemes about request message between ESB and client and response message can be CN 101184056A with reference to publication number, and denomination of invention is " a kind of distributed enterprise service bus message switching method " Chinese patent application file.
Summary of the invention
The problem that the present invention solves is when client and service end adopt symmetric encipherment algorithm to carry out encryption and decryption to service request, avoids request message to recur problem, to improve the fail safe that service end and client-side information transmit.
For solving the problem, embodiments providing a kind of sending method of service request, comprising: determine that client sends the temporal information of service request, wherein said temporal information at least comprises current time; Based on described temporal information rise time sequence and random value respectively, wherein said random value is associated with described temporal information; Described random value is added to form new key in primary key; Described new key is utilized to be encrypted to generate cryptographic service request and encryption times information to described service request and described temporal information respectively; Described cryptographic service request, described encryption times information and described time series are sent to service end.
Alternatively, described temporal information also comprises time difference; Describedly determine that client sends the temporal information of service request and comprises: determine described temporal information according to described current time and described time difference, wherein said time difference is fed back by described service end to obtain.
Alternatively, described based on described temporal information respectively rise time sequence and random value comprise: process to determine described time series to described temporal information by preset algorithm; Process to determine described random value to described temporal information or to described time series according to preset rules.
Alternatively, described service request comprises request object, and described request object is through serializing process.
Alternatively, described serializing process comprises any one in Binary Serialization process, JSON serializing process and extend markup language serializing process.
Alternatively, described service end is ESB.
Based on the sending method of above-mentioned service request, the embodiment of the present invention additionally provides a kind of dispensing device of service request, comprise: time determining device, for determining that client sends the temporal information of service request, wherein said temporal information at least comprises current time; Information generation device, for described temporal information rise time sequence and the random value respectively determined based on described time determining device, wherein said random value is associated with described temporal information; Key forming apparatus, for adding the described random value of described information generation device generation to form new key in primary key; Encryption device, the described new key formed for utilizing described key forming apparatus is encrypted to generate cryptographic service request and encryption times information to described service request and described temporal information respectively; Dispensing device, for by the described cryptographic service request generated via described encryption device and described encryption times information and be sent to service end via the described time series that described information generation device generates.
The embodiment of the present invention additionally provides a kind of client, comprises the dispensing device of above-mentioned service request.
The embodiment of the present invention additionally provides a kind of processing method of service request, comprising: receive the described cryptographic service request, described encryption times information and the described time series that adopt the sending method of above-mentioned service request to send; Determine described new key and transmission time information respectively according to described time series, wherein said transmission time information is the temporal information that client sends service request; If the time difference of described transmission time information and receiving time information is in preset time range, then adopt described new key to be decrypted to generate deciphering temporal information to the encryption times information received, wherein said receiving time information is the temporal information that service end receives service request; If described decryption time information and described transmission time information match, then continue to adopt described new key to be decrypted to obtain decryption services request to described cryptographic service request.
Alternatively, also comprise: described time difference is fed back to described client.
Alternatively, also comprise: if the time difference of described transmission time information and receiving time information is not in preset time range, then determine that described service request is invalid.
Alternatively, also comprise: if described decryption time information is not mated with described transmission time information, then determine that described service request is invalid.
Alternatively, describedly to comprise according to described time series determination transmission time information: process to determine described transmission time information to described time series by the algorithm for inversion of described preset algorithm.
Alternatively, describedly determine that described new key comprises according to described time series: process to obtain described random value to described time series according to described preset rules; Described random value is added to determine described new key in primary key.
Alternatively, described service end is ESB.
Alternatively, described preset time range is 1-3 minute.
Based on the processing method of above-mentioned service request, the embodiment of the present invention additionally provides a kind of processing unit of service request, comprise: request receiving device, for receiving the described cryptographic service request of the dispensing device transmission adopting above-mentioned service request, described encryption times information and described time series; Information processor, determines described new key and transmission time information respectively for the described time series received according to described request receiving system, and wherein said transmission time information is the temporal information that client sends service request; Decrypts information device, for the time difference of the described transmission time information that obtains in described information processor process and receiving time information in preset time range, then adopt described new key to be decrypted to generate deciphering temporal information to the encryption times information received, wherein said receiving time information is the temporal information that service end receives service request; Request decryption device, matches for described decryption time information and the described transmission time information generated at described decrypts information device, then continue the described new key of employing and be decrypted to obtain decryption services request to described cryptographic service request.
The embodiment of the present invention additionally provides a kind of service end, comprises the processing unit of above-mentioned service request.
Compared with prior art, technical solution of the present invention has following beneficial effect:
The sending method of the service request provided according to the technical program and dispensing device, when client sends service request, first determine temporal information, wherein temporal information at least comprises current time.Further, process rise time sequence and random value are carried out to described temporal information, wherein the random partial that will join as primary key in primary key of random value, thus form new key.Then, utilize this new key to be encrypted service request and temporal information respectively, and cryptographic service request, encryption times information are sent to service end together with time series.Like this on the basis utilizing symmetric encipherment algorithm to be encrypted service request, new key is formed owing to add the random value relevant to temporal information in primary key after, so the service request that sends from client of different time is not identical by the cryptographic service request formed after the encryption of this new key, thus when service end process service request, based on the problem that the information relevant to time factor can avoid service request to recur, improve the fail safe of information transmission.
The processing method of the service request provided according to the technical program and processing unit, receive cryptographic service request, encryption times information and time series that client sends, can determine that the new key that client encrypt uses and client send the transmission time information of service request according to time series.Then, whether the time difference that service end is received between the receiving time information of service request by the described transmission time information of contrast and service end determines in preset time range whether this service request retransmits, namely whether service request recurs, thus improves the fail safe of information transmission.Then, when determining that this service request is not recurred, utilize described new key to decipher described encryption times information and generate deciphering temporal information, whether mate determine whether service request is tampered in transmitting procedure by comparing decryption time information and described transmission time information, further increase the fail safe of information transmission.
Further, determined time difference is also fed back to client by service end, when client sends service request to service end next time, then by according to this time difference with send the current time of service request and determine temporal information, the time synchronized of client and service end can be kept like this.
Accompanying drawing explanation
Fig. 1 is the schematic flow sheet of the embodiment of the sending method of a kind of service request of the present invention;
Fig. 2 is the structural representation of the specific embodiment of the dispensing device of a kind of service request of the present invention;
Fig. 3 is the schematic flow sheet of the embodiment of the processing method of a kind of service request of the present invention;
Fig. 4 is the structural representation of the specific embodiment of the processing unit of a kind of service request of the present invention.
Embodiment
For the problem of prior art, inventor, through research, provides a kind of sending method of service request, the dispensing device of service request and client.Correspondingly, a kind of processing method of service request, the processing unit of service request and service end is additionally provided.The technical program solves when client and service end adopt symmetric encipherment algorithm to carry out encryption and decryption to service request, avoids the problem that request message is recurred, the fail safe of transmitting with the information improving service end and client.
For enabling above-mentioned purpose of the present invention, feature and advantage more become apparent, and are described in detail the specific embodiment of the present invention below in conjunction with accompanying drawing.
Set forth detail in the following description so that fully understand the present invention.But the present invention can be different from alternate manner described here to implement with multiple, those skilled in the art can when without prejudice to doing similar popularization when intension of the present invention.Therefore the present invention is not by the restriction of following public embodiment.
As shown in Figure 1 be the schematic flow sheet of the embodiment of the sending method of a kind of service request of the present invention.With reference to figure 1, the sending method of described service request comprises:
Step S11: determine that client sends the temporal information of service request, wherein said temporal information at least comprises current time;
Step S12: based on described temporal information rise time sequence and random value respectively, wherein said random value is associated with described temporal information;
Step S13: add described random value to form new key in primary key;
Step S14: utilize described new key to be encrypted to generate cryptographic service request and encryption times information to described service request and described temporal information respectively;
Step S15: described cryptographic service request, described encryption times information and described time series are sent to service end.
In a particular embodiment, as described in step S11, when client needs to send service request to service end as service consumer, determine the temporal information sending service request.
Specifically, when client sends service request to service end first, only need to determine described temporal information according to the current time of client, this is because client and service end not yet make time synchronized, client does not also know the temporal information of service end, therefore can only determine local current time.Further, when client sends service request to service end again, described temporal information also may comprise time difference, because after client first time sends service request to service end, service end sends the time of serving and carries out contrast by according to receiving time of this service request and client and determine time difference, and this time difference is fed back to client.Namely service end and client make time synchronized, therefore when client sends service request to service end again, will determine described temporal information according to current time and described time difference.The time (i.e. transmitting time) that such client sends service request is similar to identical with the time (i.e. time of reception) that service end receives this service request, because the difference between transmitting time and time of reception is exactly the transmission time of service request substantially, and transmission speed is also very fast in the good situation of network state, the required transmission time is corresponding also very short.
In the present embodiment, described service request comprises request object, and this request object is through serializing process.It will be appreciated by those skilled in the art that described serializing process refers to that obtaining this request object its state information being converted to can store or can the process of transmission form.During carrying out serializing process, its current state is written to interim or persistent storage district by described request object, by the state of reading or this request object of unserializing from memory block, can re-create this request object so that follow-up.Wherein, described serializing process can be Binary Serialization process, also can be JSON(JavaScript ObjectNotation) serializing process, can also be extend markup language (XML) serializing process.The detailed process of above-mentioned serializing process can adopt the technical scheme of prior art to realize, and does not repeat them here.
As described in step S12, based on described temporal information rise time sequence and random value respectively.
Particularly, be common time form of presentation according to the determined temporal information of step S11, such as, the form of the expression time that 3:20p.m, 15:20 etc. are conventional.Because described temporal information is sent to service end by the follow-up needs of client, so in order to ensure the fail safe of transmitting procedure, need to process described temporal information.This processing procedure is the equal of be encrypted described temporal information, and original temporal information is formed one section of character string after the processing mode encryption preset.
In the present embodiment, will process to determine time series to described temporal information by preset algorithm.In an instantiation, first by the time of one day by minute in units of divide, thus be divided into 1440(that is 24 × 60) minute; Then, set a starting point, such as, using 6:00 as starting point, namely the sequence of 6:00 is 0001, the sequence of 6:01 is 0002 ..., the sequence of 5:59 is 1440, the rest may be inferred, thus form one group of time series, just determined temporal information can be converted to concrete time series corresponding in this group time series according to above-mentioned preset algorithm.But in actual applications, be not limited to above-mentioned processing mode, described preset algorithm can be self-defined by client, such as, the time of one day was divided in units of 30 seconds, or time series corresponding to described temporal information can be changed by arranging etc. of adjustment starting point, not repeat them here.
It should be noted that, above-mentioned preset algorithm is consistent between client with service end, but the third-party application except this client and service end cannot know this preset algorithm, so also just improves the fail safe of time series in transmitting procedure.Even if because this time series is intercepted and captured by third-party application, because third-party application does not know this preset algorithm, so the corresponding concrete time cannot be extrapolated according to this time series.
Further, client also will according to described temporal information determination random value, and wherein said random value is associated with described temporal information.In the present embodiment, client can process to determine described random value to described temporal information according to preset rules, such as, first one group of random sequence is generated based on the time of one day, such as by minute in units of divide, namely this group random sequence is by 1440(24 × 60) a minute corresponding random number forms, and the random number that such as 0:00 is corresponding is the random number that random number is abc0002 ..., 23:59 is corresponding that abc0001,0:01 are corresponding is abc1440; Then, between adjacent two random numbers, arrange a predetermined value, the corresponding serial number of each predetermined value, this serial number can be according to the corresponding prime number of numeric order.Such as, the predetermined value between random number abc0001 and random number abc0002 is 1000, and corresponding serial number is prime number 2; Predetermined value between random number abc0002 and random number abc0003 is 1001, and corresponding serial number is prime number 3 ..., the rest may be inferred.Described like this random sequence is abc00012abc00023abc00035.......
Therefore, corresponding random number and serial number can be obtained from described random sequence according to current temporal information, such as, and using random number and serial number as described random value, described temporal information is 0:05, then the random value corresponding to this random sequence is 11abc0006.If described temporal information is the time being accurate to second, then can determine the random value of its correspondence according to the principle rounded up, such as 0:05 39random value corresponding to this random sequence is 13abc0007,0:05 15random value corresponding to this random sequence is 11abc0006.
In other embodiments, client also can process to determine described random value to described time series according to preset rules, such as, can directly using the time series that obtains after processing described temporal information above by preset algorithm as described random value.Again such as, also can using corresponding for each time series prime number as random value, specifically, time series according to generated above: in the time of one day, the sequence of 6:00 is 0001, the sequence of 6:01 is 0002 ..., the sequence of 5:59 is 1440, further, the order of sequence is converted to corresponding prime number according to the order of prime number, the prime number of the prime number of 0001 correspondence to be the prime number of 2,0002 correspondence be 3,0003 correspondence is the prime number of 5,0004 correspondence is 7 ..., the like.Therefore, if described temporal information is 6:03 is 7 according to the random value generated after preset rules process.Equally, if described temporal information is the time being accurate to second, then can determine the random value of its correspondence according to the principle rounded up, such as, 6:03 05corresponding random value is 7, and 6:03 55corresponding random value is 11.Certainly in actual applications, described preset algorithm and preset rules are not limited to above-described embodiment, and those skilled in the art can also adopt other algorithm or rule to process described temporal information with rise time sequence and random value, do not repeat them here.
That is, described random value is one group of character string according to preset rules stochastic generation, can comprise upper and lower case letter, numeral, character etc. in this character string, and the figure place of this character string can change according to the difference of preset rules.Because described random value is the character string generated after treatment based on temporal information (or time series), therefore described random value is associated with temporal information.In actual applications, described preset rules is arranged voluntarily by client, and same described preset rules is consistent between client with service end, but the third-party application except this client and service end cannot know this preset rules.
As described in step S13, in primary key, add described random value to form new key.
Specifically, the present embodiment adopts symmetric encipherment algorithm to be encrypted based on to the request object through serializing process, and wherein said primary key is exactly the key that client and service end are decided through consultation in advance.This step adds described random value to form new key on the basis of described primary key.Such as, usual described primary key is made up of one group of character string, described random value can splice the afterbody in this character string, also the head in this character string can be spliced, or described random value can also be inserted in certain position in described primary key, such as, by primary key described in described random value between the 2nd character and the 3rd character etc.In actual applications, such as, client can preset a kind of mode adding random value in described primary key, and namely all random values all join in described primary key according to this mode preset.Again such as, client also can preset the multiple mode adding random value in described primary key, and described random value adds in described primary key by each Stochastic choice wherein a kind of mode.
Because described random value is the character string being associated with temporal information, the new key formed after so adding described random value in primary key is also the character string being associated with temporal information.Can find out, in fact this is a kind of mode adopting dynamic key in a symmetric encryption algorithm, and this dynamic key is the difference of information and the key of dynamic change in time.
As described in step S14, described new key is utilized to be encrypted to generate cryptographic service request and encryption times information to described service request and described temporal information respectively.
Unlike the prior art, the encryption key adopted during existing employing symmetric encipherment algorithm is the fixed key of deciding through consultation with service end in advance, namely the encryption key adopted during each encryption is all identical, and in this step, the new key adopted is the dynamic key be associated with temporal information, owing to sending the Time Inconsistency of service request at every turn, therefore each new key generated is also different over time.
Further, cryptographic algorithm and described new key is utilized to be encrypted to generate cryptographic service request and encryption times information to described service request and described temporal information respectively.Wherein, described service request comprises request object, and this request object through serializing process with formation sequence object.In the present embodiment, when respectively described service request being encrypted with temporal information adopt cryptographic algorithm can be consistent, also different cryptographic algorithm can be adopted to be encrypted described service request and temporal information respectively, but the key adopted is all the described new key generated in above-mentioned steps S13.Wherein, described cryptographic algorithm can be des encryption algorithm, RSA cryptographic algorithms, md5 encryption algorithm etc., but is not limited to this in practical application.
As described in step S15, described cryptographic service request, described encryption times information and described time series are sent to service end.
In the present embodiment, described service end is ESB, those skilled in the art know, described ESB is integrated with the many services provided by ISP, service consumer (being client in the present embodiment) can send service request to ESB according to demand, after ESB receives this service request, call the service that corresponding ISP provides, respond this service request by ISP and feed back to client via ESB.
Unlike the prior art, in the present embodiment, owing to introducing time factor (i.e. described temporal information) being encrypted in process service request, and need to verify to determine that whether this service request is effective to the service request received based on time factor in service end.Therefore, when sending service request to service end, need the described cryptographic service request generated, described encryption times information to be sent to service end together with described time series.Those skilled in the art can adopt existing technical scheme to realize above-mentioned process of transmitting, do not repeat them here.
It should be noted that, in actual applications, usual client also needs the identity information sending this client while sending service request to service end, such as, and client name, identification number and some relevant access authority information etc.Service end by according to the identity information that receives to this client verify to determine this client be whether legal client, transmission service request whether in its access authority range etc., do not repeat them here.
Further, in actual applications, usually have multiple different client and send service request to service end.According to the embodiment of the present invention, each client can set different preset algorithm respectively and process with rise time sequence to temporal information, also can set different preset rules respectively and process to generate random value to temporal information or time series.Correspondingly, then need to store respectively the information of preset algorithm set by different clients and preset rules in service end, and these information are associated with the identity information of each client.Such as, preset algorithm and the preset rules of the identity information of each client and the setting of this client can be stored in service end by configuration information table, and associate the identity information of each client, the preset algorithm of setting and preset rules by the identification number of client.
Based on the sending method of above-mentioned service request, the embodiment of the present invention additionally provides a kind of dispensing device of service request, and client mentioned above comprises the dispensing device of described service request.
As shown in Figure 2 be the structural representation of the specific embodiment of the dispensing device of a kind of service request of the present invention.With reference to figure 2, the dispensing device 1 of described service request comprises: time determining device 11, and for determining that client sends the temporal information of service request, wherein said temporal information at least comprises current time; Information generation device 12, for described temporal information rise time sequence and the random value respectively determined based on described time determining device 11, wherein said random value is associated with described temporal information; Key forming apparatus 13, for adding the described random value of described information generation device 12 generation to form new key in primary key; Encryption device 14, the described new key formed for utilizing described key forming apparatus 13 is encrypted to generate cryptographic service request and encryption times information to described service request and described temporal information respectively; Dispensing device 15, for by the described cryptographic service request generated via described encryption device and described encryption times information and be sent to service end via the described time series that described information generation device generates.
In a particular embodiment, when the dispensing device 1 of described service request needs to send service request to service end, determine by described time determining device 11 temporal information sending service request.When the dispensing device 1 of described service request sends service request to service end first, described time determining device 11 needs to determine described temporal information according to the current time of client; And when the dispensing device 1 of described service request sends service request to service end again, described time determining device 11 is for determining described temporal information according to the current time of time difference and client, and wherein said time difference is fed back by described service end to obtain.Further, in the present embodiment, described service request comprises request object, and this request object is through serializing process.Particularly, corresponding serializing processing unit (not shown in Fig. 2) can also be set in the dispensing device 1 of described service request serializing process is carried out to request object.Wherein, described serializing process can be Binary Serialization process, also can be JSON(JavaScriptObject Notation) serializing process, can also be extend markup language (XML) serializing process.
Described temporal information rise time sequence and the random value respectively that described information generation device 12 is determined based on described time determining device 11, wherein said random value is associated with described temporal information.In the present embodiment, described information generation device 12 specifically comprises: first information generating apparatus 121, for processing to determine described time series to described temporal information by preset algorithm; Second information generation device 122, for processing to determine described random value to described temporal information or to described time series according to preset rules.Wherein, described preset algorithm and preset rules are all by the self-defined setting of client, it should be noted that, above-mentioned preset algorithm and preset rules are consistent between client with service end, but the third-party application except this client and service end cannot know this preset algorithm and preset rules, so also just improve the fail safe of time series in transmitting procedure.Even if because this time series is intercepted and captured by third-party application, because third-party application does not know this preset algorithm, so the corresponding concrete time cannot be extrapolated according to this time series.
Described key forming apparatus 13 adds the described random value of described information generation device 12 generation to form new key in primary key.The present embodiment adopts symmetric encipherment algorithm to be encrypted based on to the request object through serializing process, and wherein said primary key is exactly the key that client and service end are decided through consultation in advance.Described key forming apparatus 13 adds described random value exactly to form new key on the basis of described primary key.In actual applications, described key forming apparatus 13 can preset a kind of mode adding random value in described primary key, and namely all random values all join in described primary key according to this mode preset.Described key forming apparatus 13 also can preset the multiple mode adding random value in described primary key, and described random value adds in described primary key by each Stochastic choice wherein a kind of mode.
The described new key that described encryption device 14 utilizes described key forming apparatus 13 to be formed is encrypted to generate cryptographic service request and encryption times information to described service request and described temporal information respectively.Unlike the prior art, in the present embodiment, the new key adopted is the dynamic key be associated with temporal information, and the dispensing device 1 of described service request sends the Time Inconsistency of service request at every turn, and the new key that described key forming apparatus 13 is formed is also different over time.Further, when described encryption device 14 is encrypted with temporal information described service request respectively adopt cryptographic algorithm can be consistent, also different cryptographic algorithm can be adopted to be encrypted described service request and temporal information respectively, but the key adopted is all the new key generated by described key apparatus for converting 13.Wherein, described cryptographic algorithm can be des encryption algorithm, RSA cryptographic algorithms, md5 encryption algorithm etc., but is not limited to this in practical application.
Described dispensing device 15 is by the described cryptographic service request generated via described encryption device 14 and described encryption times information and be sent to service end via the described time series that described information generation device 12 generates.In the present embodiment, described service end is ESB.Unlike the prior art, in the present embodiment, due to described encryption device 14 service request is encrypted in process introduce time factor (i.e. described temporal information) and service end need verify to determine that whether this service request effective to the service request received based on time factor.Therefore, described dispensing device 15, when sending service request to service end, needs described cryptographic service request, described encryption times information to be sent to service end together with described time series.
In the present embodiment, in the dispensing device 1 of described service request, the concrete processing procedure of each device with reference to the embodiment of the sending method of service request as shown in Figure 1 above, can not repeat them here.
The embodiment of the present invention additionally provides a kind of client, and described client comprises the dispensing device 1 of a kind of service request as shown in Figure 2, and described client sends service request by the dispensing device 1 of described service request to service end as service requester.
Corresponding with the embodiment of the sending method of a kind of service request shown in Fig. 1, the embodiment of the present invention additionally provides a kind of processing method of service request.As shown in Figure 3 be the schematic flow sheet of the embodiment of the processing method of a kind of service request of the present invention.With reference to figure 3, the processing method of described service request comprises:
Step S21: receive the described cryptographic service request, described encryption times information and the described time series that adopt the sending method of service request of the present invention to send;
Step S22: determine described new key and transmission time information respectively according to described time series, wherein said transmission time information is the temporal information that client sends service request;
Step S23: if the time difference of described transmission time information and receiving time information is in preset time range, then adopt described new key to be decrypted to generate deciphering temporal information to the encryption times information received, wherein said receiving time information is the temporal information that service end receives service request;
Step S24: if described decryption time information and described transmission time information match, then continue to adopt described new key to be decrypted to obtain decryption services request to described cryptographic service request.
In the present embodiment, as described in step S21, described cryptographic service request, described encryption times information and described time series that the embodiment receiving the sending method of service request as described in Figure 1 sends.Wherein, described cryptographic service request, described encryption times information are cipher-text information, and described time series is cleartext information, but described in the embodiment of the sending method of the service request according to Fig. 1 described in step S12, described time series processes rear generation according to the preset algorithm of client to described temporal information, and this preset algorithm is unknowable for the third-party application except described client and service end, that is, for third-party application, described time series is in fact also cipher-text information.
Further, in actual applications, described in the sending method of service request as shown in Figure 1, usual client also needs the identity information sending this client while sending service request to service end, such as, client name, identification number and some relevant access authority information etc.Therefore, in the present embodiment, service end also needs to verify the identity information of the client received, determine whether this client is legal client, and whether this client has rights of using etc. to service integrated in service end, above-mentioned proof procedure can adopt existing technical scheme to realize, and does not repeat them here.
As described in step S22, determine described new key and transmission time information respectively according to described time series, wherein said transmission time information is the temporal information that client sends service request.
Specifically, in the present embodiment, the preset algorithm adopted for processing time information between service end with client is consistent.Therefore, after service end receives the described time series of client transmission, can process described time series based on the algorithm for inversion of described preset algorithm, to determine that client sends the temporal information of service request, i.e. described transmission time information.Such as, the described time series that service end receives is 0065, then according to the regulation of described preset algorithm be: by the time of one day by minute in units of divide, and be take 6:00 as starting point (corresponding time series is 0001), so can determine that the described transmission time information of described time series (0065) correspondence received is 7:05.
Then, according to described time series determination new key.According to the processing mode of client, described new key is determined add random value on the basis of primary key after, and because the present embodiment adopts symmetric encipherment algorithm to encrypt and decrypt based on to the request object through serializing process, therefore decide through consultation in advance with client at the primary key of service end, namely the primary key of described service end and the primary key of client are identical.
Further, because described random value is that client processes rear generation according to preset rules to described temporal information or described time series, equally because the preset rules adopted for processing time information or time series between service end with client is also consistent, therefore service end can process to determine described random value to the time series received or to time series transmission time information after treatment based on described preset rules.Therefore, service end can add the described random value that obtains through above-mentioned processing method to determine described new key in existing primary key.
Can find out, compared to prior art, the present embodiment is on the basis adopting symmetric encipherment algorithm, employ the new key be associated with temporal information, therefore, service end needs the time series determination random value sent according to client, and in primary key, adds this random value to form new key, in subsequent processes, then adopt described new key to be decrypted described cryptographic service request and encryption times information.Although, compared to existing symmetric encipherment algorithm, in the present embodiment, the treatment effeciency of service end can decline to some extent, but when can effectively avoid adopting symmetric encipherment algorithm in prior art by introducing the new key be associated with temporal information, may there is the problem that service request is recurred in client when service end sends service request.
As described in step S23, if the time difference of described transmission time information and receiving time information is in preset time range, then adopt described new key to be decrypted to generate deciphering temporal information to the encryption times information received, wherein said receiving time information is the temporal information that service end receives service request.
Specifically, service end can determine its temporal information receiving service request (i.e. described receiving time information), then the transmission time information obtained via above-mentioned steps S22 and described receiving time information is compared the time difference determined between the two.Wherein, produce described time difference and may have two aspect factors, on the one hand that service request is sent to service end from client and must needs certain transmission time, that usual client is synchronous with the retention time very difficult between service end on the other hand, namely to there is the regular hour poor for the clock of client and the clock of service end itself, referred to herein as the intrinsic time difference.That is, because described transmission time information is for benchmark is determined with the clock of client, and described receiving time information is for benchmark is determined with the clock of service end, even if so ignore the above-mentioned transmission time, also there is the intrinsic time difference between described transmission time information and described receiving time information.
Further, client is sent first to the situation of service request to service end, because client and service end not yet make time synchronized, therefore, when there is the intrinsic time difference between client and service end, described time difference difference comprises transmission time and the intrinsic time difference.And client is sent again to the situation of service request to service end, because service end is after the time difference determining described transmission time information and receiving time information, also described time difference is fed back to described client; And when client sends service request to service end again, need when determining the temporal information sending service request in the current time of client, add the time difference received, namely client and service end have made time synchronized, and therefore described time difference is similar to the described transmission time.
In the present embodiment, described service end will arrange a preset time range, if the time difference of described transmission time information and receiving time information is in described preset time range, then determine that the service request received sends from described client, instead of the service request resend after being intercepted and captured by third-party application, namely service request is recurred.Because if be that service request is recurred, due to third-party application need to intercept and capture this service request after retransmit this service request to service end again, therefore the actual transmitting time of third-party application must be later than original transmitting time being sent service request by client, so service end receives time (i.e. receiving time information) the also phase delay of this service request, to such an extent as to receiving time information and described client send service request transmission time information between time difference exceed described preset time range, now then determine that described service request is invalid.Wherein, described preset time range is 1-3 minute, and in actual applications, service end can arrange this preset time range according to actual conditions, does not repeat them here.
If the time difference of described transmission time information and receiving time information is in described preset time range, then described new key is adopted to be decrypted to generate deciphering temporal information to the encryption times information received.Specifically, owing to being the encryption times information generated after the described new key of employing and cryptographic algorithm are encrypted temporal information in client, so described new key and the decipherment algorithm corresponding with this cryptographic algorithm is then correspondingly utilized to be decrypted to generate deciphering temporal information to the encryption times information received in service end.
Then, as described in step S24, if described decryption time information and described transmission time information match, then continue to adopt described new key to be decrypted to obtain decryption services request to described cryptographic service request.Specifically, under normal circumstances, described decryption time information and described transmission time information should match, and so continuation adopts described new key to be decrypted to obtain decryption services request to described cryptographic service request by service end.The process be decrypted described encryption times information in described decrypting process and above-mentioned steps S23 is similar, does not repeat them here.
But if the service request that client sends is intercepted and captured and distorts in transmitting procedure, so described decryption time information may not be mated with described transmission time information.This is because, client sends service request to service end and comprises described cryptographic service request, described encryption times information and described time series, if wherein said time series is tampered, then service end receives time series is no longer just the time series that client originally sent.So, service end also will have error in the processing mode according to above-mentioned steps S21 to the transmission time information that time series obtains after treatment, thus cause described decryption time information not mated with described transmission time information, then determine that described service request is invalid.
It should be noted that, described in the embodiment of the sending method of the service request according to Fig. 1 above, in actual applications, usually have multiple different client and send service request to service end.So, service end needs the identity information sent according to client to determine specifically from the service request which client sends, then the time series, cryptographic service request and the encryption times information that send this client according to preset algorithm and the preset rules of this client setting stored in information table process, concrete processing procedure with reference to the processing method of the service request described in the present embodiment, can not repeat them here.
Based on the processing method of above-mentioned service request, the embodiment of the present invention additionally provides a kind of processing unit of service request, and service end mentioned above comprises the processing unit of described service request.In the present embodiment, described service end is ESB.
As shown in Figure 4 be the structural representation of the specific embodiment of the processing unit of a kind of service request of the present invention.With reference to figure 4, the processing unit 2 of described service request comprises: request receiving device 21, described cryptographic service request, described encryption times information and described time series that the dispensing device 1 for receiving employing service request as shown in Figure 2 sends; Information processor 22, determines described new key and transmission time information respectively for the described time series received according to described request receiving system 21, and wherein said transmission time information is the temporal information that client sends service request; Decrypts information device 23, for processing the time difference of described transmission time information and the receiving time information obtained at described information processor 22 in preset time range, then adopt described new key to be decrypted to generate deciphering temporal information to the encryption times information received, wherein said receiving time information is the temporal information that service end receives service request; Request decryption device 24, matches for described decryption time information and the described transmission time information generated at described decrypts information device 23, then continue the described new key of employing and be decrypted to obtain decryption services request to described cryptographic service request.
In a particular embodiment, described cryptographic service request, described encryption times information and described time series that the dispensing device 1 that described request receiving system 21 receives the service request adopted as shown in Figure 2 sends; Wherein, described cryptographic service request, described encryption times information are cipher-text information, and described time series is cleartext information.
In actual applications; because the dispensing device 1 of service request as shown in Figure 2 also also needs the identity information sending this client usually while sending service request to service end; such as, client name, identification number and some relevant access authority information etc.Therefore, in the present embodiment, the processing unit 2 of described service request is also verified by authentication means (not shown in Fig. 4) the identity information of the client received, determine whether this client is legal client, and whether this client has rights of using etc. to service integrated in service end, above-mentioned proof procedure can adopt existing technical scheme to realize, and does not repeat them here.
The described time series that described information processor 22 receives according to described request receiving system 21 determines described new key and transmission time information respectively.Particularly, described information processor 22 comprises first information processing unit 221, processes to determine described transmission time information to described time series for the algorithm for inversion by described preset algorithm; And second information processor 222, for determining described new key according to described time series.Further, described second information processor also comprises: random value determining device (not shown in Fig. 4), for processing to obtain described random value to described time series according to described preset rules; Key determining device (not shown in Fig. 4), for adding the described random value determined by described random value determining device to determine described new key in primary key.The concrete processing procedure of above-mentioned first information processing unit 221 and the second information processor 222 with reference to the associated description in the embodiment of the processing method of service request above, can not repeat them here.
Described decrypts information device 23 processes the time difference of described transmission time information and the receiving time information obtained in preset time range at described information processor 22, then adopt described new key to be decrypted to generate deciphering temporal information to the encryption times information received.A threshold value setting device (not shown in Fig. 4) can be set in the processing unit 2 of described service request, for arranging a preset time range, wherein, described preset time range is 1-3 minute, and in actual applications, this threshold value setting device can arrange this preset time range according to actual conditions, does not repeat them here.Feedback device (not shown in Fig. 4) is also comprised in the processing unit 2 of described service request, for the time difference being processed described transmission time information and the receiving time information obtained by described information processor 22 is fed back to client, like this when client sends service request to service end again, need when determining the temporal information sending service request in the current time of client, add the time difference received, namely client and service end have made time synchronized.
The processing unit 2 of described service request also comprises request processing unit (not shown in Fig. 4), for processing the time difference of described transmission time information and the receiving time information obtained at described information processor 22 not in preset time range, determine that described service request is invalid.
Described request decryption device 24, matches for described decryption time information and the described transmission time information generated at described decrypts information device 23, then continue the described new key of employing and be decrypted to obtain decryption services request to described cryptographic service request.The described decryption time information of described request processing unit also for generating at described decrypts information device 23 processes with described information processor 22 the described transmission time information obtained and does not mate, then determine that described service request is invalid by described request processing unit (not shown in Fig. 4).
In the present embodiment, in the processing unit 2 of described service request, the concrete processing procedure of each device with reference to the embodiment of the processing method of service request as shown in Figure 3 above, can not repeat them here.
The embodiment of the present invention additionally provides a kind of service end, described service end comprises the processing unit 2 of a kind of service request as shown in Figure 4, described service end is ESB, described service end is integrated with the multiple services provided by ISP, receive the service request sent from service requester, and this service request is processed.
It should be noted that, the sending method of the service request that the technical program provides and processing method are not limited to be applied in service requester and send service request to ESB, the scene of service request described in ESB process.Such as, the client in heterogeneous networks sends in the process of data mutually, and because transmitting terminal generally all needs to data to be sent through encryption, then receiving terminal is decrypted the enciphered data received again.When adopting symmetric encipherment algorithm, the open method of the technical program can be adopted to process, specifically, transmitting terminal adopts the sending method of service request described in the embodiment of the present invention to process data to be sent, then together with encryption data to be sent, encryption times information and the time series that is associated with temporal information, is sent to receiving terminal; After receiving terminal receives described encryption data to be sent, described encryption times information and described time series, the processing method of service request described in the embodiment of the present invention is adopted to process receiving above-mentioned information, the information that other clients can be avoided like this to intercept and capture the transmission of described transmitting terminal is retransmitted to receiving terminal, thus improves the fail safe of sending and receiving end transfer of data.
In sum, the technical program is when client and service end adopt symmetric encipherment algorithm to carry out encryption and decryption to service request, client adds the random value relevant to temporal information to form new key in primary key, and utilize this new key to be encrypted service request and temporal information, then cryptographic service request, encryption times information and the time series based on temporal information generation are sent to service end.The transmission time information of described new key and client is determined based on the time series received in service end, whether the time difference between the receiving time information receiving service request by contrasting described transmission time information and service end determines in preset time range whether this service request retransmits, namely whether service request recurs, thus improves the fail safe of information transmission.Then, when determining that this service request is not recurred, utilize described new key to decipher described encryption times information and generate deciphering temporal information, whether mate determine whether service request is tampered in transmitting procedure by comparing decryption time information and described transmission time information, further increase the fail safe of information transmission.
Further, described time difference is also fed back to client by service end, when client sends service request to service end next time, then by according to this time difference with send the current time of service request and determine temporal information, the time synchronized of client and service end can be kept like this.
Although the present invention with preferred embodiment openly as above; but it is not for limiting the present invention; any those skilled in the art without departing from the spirit and scope of the present invention; the Method and Technology content of above-mentioned announcement can be utilized to make possible variation and amendment to technical solution of the present invention; therefore; every content not departing from technical solution of the present invention; the any simple modification done above embodiment according to technical spirit of the present invention, equivalent variations and modification, all belong to the protection range of technical solution of the present invention.

Claims (27)

1. a sending method for service request, is characterized in that, described sending method, by client executing, comprising:
Determine that client sends the temporal information of service request, wherein said temporal information at least comprises current time;
Based on described temporal information rise time sequence and random value respectively, wherein, process to determine described time series to described temporal information by preset algorithm, process to determine described random value to described temporal information or described time series according to preset rules, described random value is associated with described temporal information;
In primary key, add described random value to form new key, wherein, described primary key is decided through consultation in advance by client and service end;
Described new key is utilized to be encrypted to generate cryptographic service request and encryption times information to described service request and described temporal information respectively;
Described cryptographic service request, described encryption times information and described time series are sent to service end.
2. the sending method of service request according to claim 1, is characterized in that, described temporal information also comprises time difference; Describedly determine that client sends the temporal information of service request and comprises:
Determine described temporal information according to described current time and described time difference, wherein said time difference is fed back by described service end to obtain.
3. the sending method of service request according to claim 1, is characterized in that, described service request comprises request object, and described request object is through serializing process.
4. the sending method of service request according to claim 3, is characterized in that, described serializing process comprises any one in Binary Serialization process, JSON serializing process and extend markup language serializing process.
5. the sending method of service request according to claim 1, is characterized in that, described service end is ESB.
6. a dispensing device for service request, is characterized in that, described dispensing device is arranged on client, comprising:
Time determining device, for determining that client sends the temporal information of service request, wherein said temporal information at least comprises current time;
Information generation device, for described temporal information rise time sequence and the random value respectively determined based on described time determining device, wherein, process to determine described time series to described temporal information by preset algorithm, process to determine described random value to described temporal information or described time series according to preset rules, described random value is associated with described temporal information;
Key forming apparatus, for adding the described random value of described information generation device generation to form new key in primary key, wherein, described primary key is decided through consultation in advance by client and service end;
Encryption device, the described new key formed for utilizing described key forming apparatus is encrypted to generate cryptographic service request and encryption times information to described service request and described temporal information respectively;
Dispensing device, for by the described cryptographic service request generated via described encryption device and described encryption times information and be sent to service end via the described time series that described information generation device generates.
7. the dispensing device of service request according to claim 6, is characterized in that, described temporal information also comprises time difference; Described time determining device is used for determining described temporal information according to described current time and described time difference, and wherein said time difference is fed back by described service end to obtain.
8. the dispensing device of service request according to claim 6, is characterized in that, described service request comprises request object, and described request object is through serializing process.
9. the dispensing device of service request according to claim 8, is characterized in that, described serializing process comprises any one in Binary Serialization process, JSON serializing process and extend markup language serializing process.
10. a client, is characterized in that, comprising: the dispensing device of the service request according to any one of claim 6 to 9.
The processing method of 11. 1 kinds of service requests, is characterized in that, described processing method is performed by service end, comprising:
Described cryptographic service request, described encryption times information and described time series that the sending method receiving the service request adopted according to any one of claim 1 to 5 sends;
Determine described new key and transmission time information respectively according to described time series, wherein said transmission time information is the temporal information that client sends service request;
If the time difference of described transmission time information and receiving time information is in preset time range, then adopt described new key to be decrypted to generate deciphering temporal information to the encryption times information received, wherein said receiving time information is the temporal information that service end receives service request;
If described decryption time information and described transmission time information match, then continue to adopt described new key to be decrypted to obtain decryption services request to described cryptographic service request.
The processing method of 12. service requests according to claim 11, is characterized in that, also comprise: described time difference is fed back to described client.
The processing method of 13. service requests according to claim 11, is characterized in that, also comprise: if the time difference of described transmission time information and receiving time information is not in preset time range, then determine that described service request is invalid.
The processing method of 14. service requests according to claim 11, is characterized in that, also comprise: if described decryption time information is not mated with described transmission time information, then determine that described service request is invalid.
The processing method of 15. service requests according to claim 11, it is characterized in that, describedly to comprise according to described time series determination transmission time information: process to determine described transmission time information to described time series by the algorithm for inversion of described preset algorithm.
The processing method of 16. service requests according to claim 11, is characterized in that, describedly determines that described new key comprises according to described time series:
Process to obtain described random value to described time series according to described preset rules;
Described random value is added to determine described new key in primary key.
The processing method of 17. service requests according to claim 11, is characterized in that, described service end is ESB.
The processing method of 18. service requests according to claim 11, is characterized in that, described preset time range is 1-3 minute.
The processing unit of 19. 1 kinds of service requests, is characterized in that, described processing unit is arranged on service end, comprising:
Request receiving device, described cryptographic service request, described encryption times information and described time series that the dispensing device for receiving the service request adopted according to any one of claim 6 to 9 sends;
Information processor, determines described new key and transmission time information respectively for the described time series received according to described request receiving system, and wherein said transmission time information is the temporal information that client sends service request;
Decrypts information device, for the time difference of the described transmission time information that obtains in described information processor process and receiving time information in preset time range, then adopt described new key to be decrypted to generate deciphering temporal information to the encryption times information received, wherein said receiving time information is the temporal information that service end receives service request;
Request decryption device, matches for described decryption time information and the described transmission time information generated at described decrypts information device, then continue the described new key of employing and be decrypted to obtain decryption services request to described cryptographic service request.
The processing unit of 20. service requests according to claim 19, it is characterized in that, also comprise feedback device, for the time difference of the described transmission time information obtained by described information processor process and receiving time information is fed back to described client.
The processing unit of 21. service requests according to claim 19, it is characterized in that, also comprise request processing unit, for the time difference of the described transmission time information that obtains in described information processor process and receiving time information not in preset time range, determine that described service request is invalid.
The processing unit of 22. service requests according to claim 21, it is characterized in that, the described decryption time information of described request processing unit also for generating at described decrypts information device is not mated with described transmission time information, then determine that described service request is invalid.
The processing unit of 23. service requests according to claim 19, it is characterized in that, described information processor comprises first information processing unit, processes to determine described transmission time information to described time series for the algorithm for inversion by described preset algorithm.
The processing unit of 24. service requests according to claim 19, is characterized in that, described information processor comprises the second information processor, for determining described new key according to described time series; Wherein said second information processor comprises:
Random value determining device, for processing to obtain described random value to described time series according to described preset rules;
Key determining device, for adding the described random value determined by described random value determining device to determine described new key in primary key.
The processing unit of 25. service requests according to claim 19, is characterized in that, described service end is ESB.
The processing unit of 26. service requests according to claim 19, is characterized in that, described preset time range is 1-3 minute.
27. 1 kinds of service ends, is characterized in that, comprising: the processing unit of the service request according to any one of claim 19 to 26.
CN201210220489.4A 2012-06-28 2012-06-28 Method and device for transmitting/processing service request, client end and service end Active CN102724207B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210220489.4A CN102724207B (en) 2012-06-28 2012-06-28 Method and device for transmitting/processing service request, client end and service end

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210220489.4A CN102724207B (en) 2012-06-28 2012-06-28 Method and device for transmitting/processing service request, client end and service end

Publications (2)

Publication Number Publication Date
CN102724207A CN102724207A (en) 2012-10-10
CN102724207B true CN102724207B (en) 2015-07-15

Family

ID=46949870

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210220489.4A Active CN102724207B (en) 2012-06-28 2012-06-28 Method and device for transmitting/processing service request, client end and service end

Country Status (1)

Country Link
CN (1) CN102724207B (en)

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104184580A (en) * 2013-05-21 2014-12-03 北京神州泰岳软件股份有限公司 Network operating method and network operating system
CN106130720A (en) * 2016-08-12 2016-11-16 福建中金在线信息科技有限公司 A kind of method that internet information required parameter is encrypted safely and deciphered
CN106453300A (en) * 2016-09-30 2017-02-22 北京悦畅科技有限公司 Data encryption and decryption method and device, and data transmission system
CN108512820B (en) * 2017-02-28 2020-07-24 华为技术有限公司 Method and equipment for server to respond to request message in communication system
CN107566335B (en) * 2017-07-21 2019-04-02 北京海泰方圆科技股份有限公司 The treating method and apparatus of message
CN107819572B (en) 2017-09-29 2021-01-22 北京比特大陆科技有限公司 Command transmission method and device and electronic equipment
CN107888611B (en) * 2017-11-29 2020-10-02 武汉船舶通信研究所(中国船舶重工集团公司第七二二研究所) Communication method and device
CN108768927B (en) * 2018-04-04 2021-06-01 武汉船舶通信研究所(中国船舶重工集团公司第七二二研究所) Secure communication method and device
CN108737377A (en) * 2018-04-17 2018-11-02 深圳市网心科技有限公司 Data guard method, server and computer readable storage medium
CN109710394A (en) * 2018-12-27 2019-05-03 出门问问信息科技有限公司 Timing task processing system and method
CN110443915B (en) * 2019-06-24 2023-04-18 深圳绿米联创科技有限公司 Door lock control method, control device, door lock and storage medium
CN111399770B (en) * 2020-02-26 2023-07-11 平安科技(深圳)有限公司 Data storage mode conversion method, device and storage medium
CN111740831B (en) * 2020-08-13 2020-11-06 国网浙江省电力有限公司 Electric power data encryption transmission method, system and readable medium for multiplex and production detection
CN111970109B (en) * 2020-08-13 2023-01-24 山东英信计算机技术有限公司 Data transmission method and system
CN112073188B (en) * 2020-08-31 2023-01-24 北京市商汤科技开发有限公司 Authentication method, device, equipment and computer readable storage medium
CN113300842B (en) * 2021-05-26 2022-07-22 清创网御(北京)科技有限公司 Method for improving security of symmetric encryption algorithm
CN114244563A (en) * 2021-11-15 2022-03-25 珠海许继芝电网自动化有限公司 Front-end and back-end cross-language communication method and system based on AES encryption
CN114785505B (en) * 2022-06-22 2022-08-23 中科雨辰科技有限公司 Data processing system for acquiring abnormal equipment
CN117527238B (en) * 2024-01-03 2024-03-19 成都新希望金融信息有限公司 Key generation method, device, electronic equipment and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1831834A (en) * 2006-04-20 2006-09-13 成都昊芯科技有限公司 Dynamic enciphering method and circuit for information
CN101800989A (en) * 2010-01-19 2010-08-11 重庆邮电大学 Anti-replay-attack system for industrial wireless network
CN101807997A (en) * 2010-04-28 2010-08-18 中国工商银行股份有限公司 Device and method for generating transmission key

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040202329A1 (en) * 2003-04-11 2004-10-14 Samsung Electronics Co., Ltd. Method and system for providing broadcast service using encryption in a mobile communication system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1831834A (en) * 2006-04-20 2006-09-13 成都昊芯科技有限公司 Dynamic enciphering method and circuit for information
CN101800989A (en) * 2010-01-19 2010-08-11 重庆邮电大学 Anti-replay-attack system for industrial wireless network
CN101807997A (en) * 2010-04-28 2010-08-18 中国工商银行股份有限公司 Device and method for generating transmission key

Also Published As

Publication number Publication date
CN102724207A (en) 2012-10-10

Similar Documents

Publication Publication Date Title
CN102724207B (en) Method and device for transmitting/processing service request, client end and service end
CN100574325C (en) A kind of Web communication encrypting method
US20030084292A1 (en) Using atomic messaging to increase the security of transferring data across a network
CN102333093A (en) Data encryption transmission method and system
CN112702318A (en) Communication encryption method, decryption method, client and server
US20230188325A1 (en) Computer-implemented system and method for highly secure, high speed encryption and transmission of data
CN102377571A (en) Method and system for implementing IEC104 message transmission
CN113630248B (en) Session key negotiation method
CN111080299B (en) Anti-repudiation method for transaction information, client and server
WO2020115265A1 (en) Certificateless public key encryption using pairings
CA2819211C (en) Data encryption
US20200235915A1 (en) Computer-implemented system and method for highly secure, high speed encryption and transmission of data
CN102088352A (en) Data encryption transmission method and system for message-oriented middleware
CN107249002B (en) Method, system and device for improving safety of intelligent electric energy meter
CN114499857B (en) Method for realizing data correctness and consistency in encryption and decryption of large data quanta
CN101984626B (en) Method and system for safely exchanging files
CN104468074A (en) Method and equipment for authentication between applications
WO2020115266A1 (en) Methods and devices for secured identity-based encryption systems with two trusted centers
CN116055141A (en) Data security transmission method, system, device and storage medium
CN108173641B (en) Zigbee safety communication method based on RSA
JP2002152189A (en) Open key distributing method, and open key transmitting device and open key receiving device used for the same method
CN116389098A (en) Cross-domain ciphertext access control method supporting multi-receiver authorization in Internet of vehicles environment
CN115021906A (en) Method, terminal and device for realizing data transmission of digital envelope
CN112039663B (en) Data transmission method and system
US20170026829A1 (en) Advanced metering infrastructure network system and message broadcasting method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
C56 Change in the name or address of the patentee
CP01 Change in the name or title of a patent holder

Address after: 200437, 302-B, room 990, East Sports Club Road, Shanghai, Hongkou District

Patentee after: Shanghai easy Link Network Technology Co., Ltd.

Address before: 200437, 302-B, room 990, East Sports Club Road, Shanghai, Hongkou District

Patentee before: Shanghai Xiben Network Technology Co., Ltd.